CVE-2026-23977
WordPress Helpdesk Support Ticket System for WooCommerce plugin <= 2.1.2 - Broken Access Control vulnerability
CVSS Score
7.5
EPSS Score
0.0%
EPSS Percentile
4th
Missing Authorization vulnerability in WPFactory Helpdesk Support Ticket System for WooCommerce support-ticket-system-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Helpdesk Support Ticket System for WooCommerce: from n/a through <= 2.1.2.
| CWE | CWE-862 |
| Vendor | wpfactory |
| Product | helpdesk support ticket system for woocommerce |
| Published | Mar 25, 2026 |
| Last Updated | Mar 26, 2026 |
Stay Ahead of the Next One
Get instant alerts for wpfactory helpdesk support ticket system for woocommerce
Be the first to know when new high vulnerabilities affecting wpfactory helpdesk support ticket system for woocommerce are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
WPFactory / Helpdesk Support Ticket System for WooCommerce
n/a โค <= 2.1.2
References
Credits
daroo | Patchstack Bug Bounty Program